Gitiles
Code Review Sign In
gerrit.omnirom.org / android_hardware_interfaces / f5459521c12523d58b5d5aa0edb99b522cd66103 / . / gatekeeper / 1.0 / vts / functional / VtsHalGatekeeperV1_0TargetTest.cpp
blob: f3fa0b469e96ebf94b48a019325cbfcaba6e9a63 [file] [log] [blame]
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]1/*
2 * Copyright (C) 2016 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17#define LOG_TAG "gatekeeper_hidl_hal_test"
18
19#include <algorithm>
20#include <cmath>
21#include <string>
22#include <vector>
23
24#include <inttypes.h>
25#include <unistd.h>
26
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]27#include <gtest/gtest.h>
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]28#include <hardware/hw_auth_token.h>
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]29#include <hidl/GtestPrinter.h>
30#include <hidl/ServiceManagement.h>
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]31
Yifan Hongf9d30342016-11-30 13:45:34 -0800[diff] [blame]32#include <android/log.h>
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]33#include <android/hardware/gatekeeper/1.0/IGatekeeper.h>
34#include <android/hardware/gatekeeper/1.0/types.h>
35
Steven Moreland3eb7df72017-04-06 12:15:23 -0700[diff] [blame]36#include <log/log.h>
37
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]38using ::android::hardware::hidl_string;
39using ::android::hardware::hidl_vec;
40using ::android::hardware::gatekeeper::V1_0::IGatekeeper;
41using ::android::hardware::gatekeeper::V1_0::GatekeeperResponse;
42using ::android::hardware::gatekeeper::V1_0::GatekeeperStatusCode;
43using ::android::hardware::Return;
44using ::android::hardware::Void;
45using ::android::sp;
46
47struct GatekeeperRequest {
48 uint32_t uid;
49 uint64_t challenge;
50 hidl_vec<uint8_t> curPwdHandle;
51 hidl_vec<uint8_t> curPwd;
52 hidl_vec<uint8_t> newPwd;
53 GatekeeperRequest() : uid(0), challenge(0) {}
54};
55
56// ASSERT_* macros generate return "void" internally
57// we have to use EXPECT_* if we return anything but "void"
58static const hw_auth_token_t *toAuthToken(GatekeeperResponse &rsp) {
59 const hw_auth_token_t *auth_token =
60 reinterpret_cast<hw_auth_token_t *>(rsp.data.data());
61 const size_t auth_token_size = rsp.data.size();
62
63 EXPECT_NE(nullptr, auth_token);
64 EXPECT_EQ(sizeof(hw_auth_token_t), auth_token_size);
65
66 if (auth_token != nullptr && auth_token_size >= sizeof(*auth_token)) {
67 // these are in network order: translate to host
68 uint32_t auth_type = ntohl(auth_token->authenticator_type);
69 uint64_t auth_tstamp = ntohq(auth_token->timestamp);
70
71 EXPECT_EQ(HW_AUTH_PASSWORD, auth_type);
72 EXPECT_NE(UINT64_C(~0), auth_tstamp);
73 EXPECT_EQ(HW_AUTH_TOKEN_VERSION, auth_token->version);
74 // EXPECT_NE(UINT64_C(0), auth_token->authenticator_id);
75 ALOGI("Authenticator ID: %016" PRIX64, auth_token->authenticator_id);
76 EXPECT_NE(UINT32_C(0), auth_token->user_id);
77 }
78 return auth_token;
79}
80
81// The main test class for Gatekeeper HIDL HAL.
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]82class GatekeeperHidlTest : public ::testing::TestWithParam<std::string> {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]83 protected:
84 void setUid(uint32_t uid) { uid_ = uid; }
85
86 void doEnroll(GatekeeperRequest &req, GatekeeperResponse &rsp) {
87 while (true) {
88 auto ret = gatekeeper_->enroll(
89 uid_, req.curPwdHandle, req.curPwd, req.newPwd,
90 [&rsp](const GatekeeperResponse &cbRsp) { rsp = cbRsp; });
Steven Morelandb6438422017-01-03 17:06:57 -0800[diff] [blame]91 ASSERT_TRUE(ret.isOk());
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]92 if (rsp.code != GatekeeperStatusCode::ERROR_RETRY_TIMEOUT) break;
93 ALOGI("%s: got retry code; retrying in 1 sec", __func__);
94 sleep(1);
95 }
96 }
97
98 void doVerify(GatekeeperRequest &req, GatekeeperResponse &rsp) {
99 while (true) {
100 auto ret = gatekeeper_->verify(
101 uid_, req.challenge, req.curPwdHandle, req.newPwd,
102 [&rsp](const GatekeeperResponse &cb_rsp) { rsp = cb_rsp; });
Steven Morelandb6438422017-01-03 17:06:57 -0800[diff] [blame]103 ASSERT_TRUE(ret.isOk());
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]104 if (rsp.code != GatekeeperStatusCode::ERROR_RETRY_TIMEOUT) break;
105 ALOGI("%s: got retry code; retrying in 1 sec", __func__);
106 sleep(1);
107 }
108 }
109
110 void doDeleteUser(GatekeeperResponse &rsp) {
111 while (true) {
112 auto ret = gatekeeper_->deleteUser(
113 uid_, [&rsp](const GatekeeperResponse &cb_rsp) { rsp = cb_rsp; });
Steven Morelandb6438422017-01-03 17:06:57 -0800[diff] [blame]114 ASSERT_TRUE(ret.isOk());
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]115 if (rsp.code != GatekeeperStatusCode::ERROR_RETRY_TIMEOUT) break;
116 ALOGI("%s: got retry code; retrying in 1 sec", __func__);
117 sleep(1);
118 }
119 }
120
121 void doDeleteAllUsers(GatekeeperResponse &rsp) {
122 while (true) {
123 auto ret = gatekeeper_->deleteAllUsers(
124 [&rsp](const GatekeeperResponse &cb_rsp) { rsp = cb_rsp; });
Steven Morelandb6438422017-01-03 17:06:57 -0800[diff] [blame]125 ASSERT_TRUE(ret.isOk());
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]126 if (rsp.code != GatekeeperStatusCode::ERROR_RETRY_TIMEOUT) break;
127 ALOGI("%s: got retry code; retrying in 1 sec", __func__);
128 sleep(1);
129 }
130 }
131
132 void generatePassword(hidl_vec<uint8_t> &password, uint8_t seed) {
133 password.resize(16);
134 memset(password.data(), seed, password.size());
135 }
136
137 void checkEnroll(GatekeeperResponse &rsp, bool expectSuccess) {
138 if (expectSuccess) {
139 EXPECT_EQ(GatekeeperStatusCode::STATUS_OK, rsp.code);
140 EXPECT_NE(nullptr, rsp.data.data());
141 EXPECT_GT(rsp.data.size(), UINT32_C(0));
142 } else {
143 EXPECT_EQ(GatekeeperStatusCode::ERROR_GENERAL_FAILURE, rsp.code);
144 EXPECT_EQ(UINT32_C(0), rsp.data.size());
145 }
146 }
147
148 void checkVerify(GatekeeperResponse &rsp, uint64_t challenge,
149 bool expectSuccess) {
150 if (expectSuccess) {
151 EXPECT_GE(rsp.code, GatekeeperStatusCode::STATUS_OK);
152 EXPECT_LE(rsp.code, GatekeeperStatusCode::STATUS_REENROLL);
153
154 const hw_auth_token_t *auth_token = toAuthToken(rsp);
155 ASSERT_NE(nullptr, auth_token);
156 EXPECT_EQ(challenge, auth_token->challenge);
157 } else {
158 EXPECT_EQ(GatekeeperStatusCode::ERROR_GENERAL_FAILURE, rsp.code);
159 EXPECT_EQ(UINT32_C(0), rsp.data.size());
160 }
161 }
162
163 void enrollNewPassword(hidl_vec<uint8_t> &password, GatekeeperResponse &rsp,
164 bool expectSuccess) {
165 GatekeeperRequest req;
166 req.newPwd.setToExternal(password.data(), password.size());
167 doEnroll(req, rsp);
168 checkEnroll(rsp, expectSuccess);
169 }
170
171 void verifyPassword(hidl_vec<uint8_t> &password,
172 hidl_vec<uint8_t> &passwordHandle, uint64_t challenge,
173 GatekeeperResponse &verifyRsp, bool expectSuccess) {
174 GatekeeperRequest verifyReq;
175
176 // build verify request for the same password (we want it to succeed)
177 verifyReq.newPwd = password;
178 // use enrolled password handle we've got
179 verifyReq.curPwdHandle = passwordHandle;
180 verifyReq.challenge = challenge;
181 doVerify(verifyReq, verifyRsp);
182 checkVerify(verifyRsp, challenge, expectSuccess);
183 }
184
185 protected:
186 sp<IGatekeeper> gatekeeper_;
187 uint32_t uid_;
188
189 public:
190 GatekeeperHidlTest() : uid_(0) {}
191 virtual void SetUp() override {
192 GatekeeperResponse rsp;
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]193 gatekeeper_ = IGatekeeper::getService(GetParam());
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]194 ASSERT_NE(nullptr, gatekeeper_.get());
195 doDeleteAllUsers(rsp);
196 }
197
198 virtual void TearDown() override {
199 GatekeeperResponse rsp;
200 doDeleteAllUsers(rsp);
201 }
202};
203
204/**
205 * Ensure we can enroll new password
206 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]207TEST_P(GatekeeperHidlTest, EnrollSuccess) {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]208 hidl_vec<uint8_t> password;
209 GatekeeperResponse rsp;
210 ALOGI("Testing Enroll (expected success)");
211 generatePassword(password, 0);
212 enrollNewPassword(password, rsp, true);
213 ALOGI("Testing Enroll done");
214}
215
216/**
217 * Ensure we can not enroll empty password
218 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]219TEST_P(GatekeeperHidlTest, EnrollNoPassword) {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]220 hidl_vec<uint8_t> password;
221 GatekeeperResponse rsp;
222 ALOGI("Testing Enroll (expected failure)");
223 enrollNewPassword(password, rsp, false);
224 ALOGI("Testing Enroll done");
225}
226
227/**
228 * Ensure we can successfully verify previously enrolled password
229 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]230TEST_P(GatekeeperHidlTest, VerifySuccess) {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]231 GatekeeperResponse enrollRsp;
232 GatekeeperResponse verifyRsp;
233 hidl_vec<uint8_t> password;
234
235 ALOGI("Testing Enroll+Verify (expected success)");
236 generatePassword(password, 0);
237 enrollNewPassword(password, enrollRsp, true);
238 verifyPassword(password, enrollRsp.data, 1, verifyRsp, true);
Marco Nelissen111feb12021-06-14 11:29:21 -0700[diff] [blame]239
240 ALOGI("Testing unenrolled password doesn't verify");
241 generatePassword(password, 1);
242 verifyPassword(password, enrollRsp.data, 1, verifyRsp, false);
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]243 ALOGI("Testing Enroll+Verify done");
244}
245
246/**
247 * Ensure we can securely update password (keep the same
248 * secure user_id) if we prove we know old password
249 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]250TEST_P(GatekeeperHidlTest, TrustedReenroll) {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]251 GatekeeperResponse enrollRsp;
252 GatekeeperRequest reenrollReq;
253 GatekeeperResponse reenrollRsp;
254 GatekeeperResponse verifyRsp;
255 GatekeeperResponse reenrollVerifyRsp;
256 hidl_vec<uint8_t> password;
257 hidl_vec<uint8_t> newPassword;
258
259 generatePassword(password, 0);
260
261 ALOGI("Testing Trusted Reenroll (expected success)");
262 enrollNewPassword(password, enrollRsp, true);
263 verifyPassword(password, enrollRsp.data, 0, verifyRsp, true);
264 ALOGI("Primary Enroll+Verify done");
265
266 generatePassword(newPassword, 1);
267 reenrollReq.newPwd.setToExternal(newPassword.data(), newPassword.size());
268 reenrollReq.curPwd.setToExternal(password.data(), password.size());
269 reenrollReq.curPwdHandle.setToExternal(enrollRsp.data.data(),
270 enrollRsp.data.size());
271
272 doEnroll(reenrollReq, reenrollRsp);
273 checkEnroll(reenrollRsp, true);
274 verifyPassword(newPassword, reenrollRsp.data, 0, reenrollVerifyRsp, true);
275 ALOGI("Trusted ReEnroll+Verify done");
276
277 const hw_auth_token_t *first = toAuthToken(verifyRsp);
278 const hw_auth_token_t *second = toAuthToken(reenrollVerifyRsp);
279 if (first != nullptr && second != nullptr) {
280 EXPECT_EQ(first->user_id, second->user_id);
281 }
282 ALOGI("Testing Trusted Reenroll done");
283}
284
285/**
286 * Ensure we can update password (and get new
287 * secure user_id) if we don't know old password
288 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]289TEST_P(GatekeeperHidlTest, UntrustedReenroll) {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]290 GatekeeperResponse enrollRsp;
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]291 GatekeeperResponse reenrollRsp;
292 GatekeeperResponse verifyRsp;
293 GatekeeperResponse reenrollVerifyRsp;
294 hidl_vec<uint8_t> password;
295 hidl_vec<uint8_t> newPassword;
296
297 ALOGI("Testing Untrusted Reenroll (expected success)");
298 generatePassword(password, 0);
299 enrollNewPassword(password, enrollRsp, true);
300 verifyPassword(password, enrollRsp.data, 0, verifyRsp, true);
301 ALOGI("Primary Enroll+Verify done");
302
303 generatePassword(newPassword, 1);
304 enrollNewPassword(newPassword, reenrollRsp, true);
305 verifyPassword(newPassword, reenrollRsp.data, 0, reenrollVerifyRsp, true);
306 ALOGI("Untrusted ReEnroll+Verify done");
307
308 const hw_auth_token_t *first = toAuthToken(verifyRsp);
309 const hw_auth_token_t *second = toAuthToken(reenrollVerifyRsp);
310 if (first != nullptr && second != nullptr) {
311 EXPECT_NE(first->user_id, second->user_id);
312 }
313 ALOGI("Testing Untrusted Reenroll done");
314}
315
316/**
317 * Ensure we dont get successful verify with invalid data
318 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]319TEST_P(GatekeeperHidlTest, VerifyNoData) {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]320 hidl_vec<uint8_t> password;
321 hidl_vec<uint8_t> passwordHandle;
322 GatekeeperResponse verifyRsp;
323
324 ALOGI("Testing Verify (expected failure)");
325 verifyPassword(password, passwordHandle, 0, verifyRsp, false);
326 EXPECT_EQ(GatekeeperStatusCode::ERROR_GENERAL_FAILURE, verifyRsp.code);
327 ALOGI("Testing Verify done");
328}
329
330/**
331 * Ensure we can not verify password after we enrolled it and then deleted user
332 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]333TEST_P(GatekeeperHidlTest, DeleteUserTest) {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]334 hidl_vec<uint8_t> password;
335 GatekeeperResponse enrollRsp;
336 GatekeeperResponse verifyRsp;
337 GatekeeperResponse delRsp;
338 ALOGI("Testing deleteUser (expected success)");
339 setUid(10001);
340 generatePassword(password, 0);
341 enrollNewPassword(password, enrollRsp, true);
342 verifyPassword(password, enrollRsp.data, 0, verifyRsp, true);
343 ALOGI("Enroll+Verify done");
344 doDeleteUser(delRsp);
345 EXPECT_EQ(UINT32_C(0), delRsp.data.size());
346 EXPECT_TRUE(delRsp.code == GatekeeperStatusCode::ERROR_NOT_IMPLEMENTED ||
347 delRsp.code == GatekeeperStatusCode::STATUS_OK);
348 ALOGI("DeleteUser done");
349 if (delRsp.code == GatekeeperStatusCode::STATUS_OK) {
350 verifyPassword(password, enrollRsp.data, 0, verifyRsp, false);
351 EXPECT_EQ(GatekeeperStatusCode::ERROR_GENERAL_FAILURE, verifyRsp.code);
352 ALOGI("Verify after Delete done (must fail)");
353 }
354 ALOGI("Testing deleteUser done: rsp=%" PRIi32, delRsp.code);
355}
356
357/**
Ryan Campbellb7a77542017-02-22 11:15:35 -0800[diff] [blame]358 * Ensure we can not delete a user that does not exist
359 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]360TEST_P(GatekeeperHidlTest, DeleteInvalidUserTest) {
Ryan Campbellb7a77542017-02-22 11:15:35 -0800[diff] [blame]361 hidl_vec<uint8_t> password;
362 GatekeeperResponse enrollRsp;
363 GatekeeperResponse verifyRsp;
364 GatekeeperResponse delRsp1;
365 GatekeeperResponse delRsp2;
366 ALOGI("Testing deleteUser (expected failure)");
367 setUid(10002);
368 generatePassword(password, 0);
369 enrollNewPassword(password, enrollRsp, true);
370 verifyPassword(password, enrollRsp.data, 0, verifyRsp, true);
371 ALOGI("Enroll+Verify done");
372
373 // Delete the user
374 doDeleteUser(delRsp1);
375 EXPECT_EQ(UINT32_C(0), delRsp1.data.size());
376 EXPECT_TRUE(delRsp1.code == GatekeeperStatusCode::ERROR_NOT_IMPLEMENTED ||
377 delRsp1.code == GatekeeperStatusCode::STATUS_OK);
378
379 // Delete the user again
380 doDeleteUser(delRsp2);
381 EXPECT_EQ(UINT32_C(0), delRsp2.data.size());
382 EXPECT_TRUE(delRsp2.code == GatekeeperStatusCode::ERROR_NOT_IMPLEMENTED ||
383 delRsp2.code == GatekeeperStatusCode::ERROR_GENERAL_FAILURE);
384 ALOGI("DeleteUser done");
385 ALOGI("Testing deleteUser done: rsp=%" PRIi32, delRsp2.code);
386}
387
388/**
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]389 * Ensure we can not verify passwords after we enrolled them and then deleted
390 * all users
391 */
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]392TEST_P(GatekeeperHidlTest, DeleteAllUsersTest) {
Alexey Polyudov96f4a892016-11-22 14:18:01 -0800[diff] [blame]393 struct UserData {
394 uint32_t userId;
395 hidl_vec<uint8_t> password;
396 GatekeeperResponse enrollRsp;
397 GatekeeperResponse verifyRsp;
398 UserData(int id) { userId = id; }
399 } users[3]{10001, 10002, 10003};
400 GatekeeperResponse delAllRsp;
401 ALOGI("Testing deleteAllUsers (expected success)");
402
403 // enroll multiple users
404 for (size_t i = 0; i < sizeof(users) / sizeof(users[0]); ++i) {
405 setUid(users[i].userId);
406 generatePassword(users[i].password, (i % 255) + 1);
407 enrollNewPassword(users[i].password, users[i].enrollRsp, true);
408 }
409 ALOGI("Multiple users enrolled");
410
411 // verify multiple users
412 for (size_t i = 0; i < sizeof(users) / sizeof(users[0]); ++i) {
413 setUid(users[i].userId);
414 verifyPassword(users[i].password, users[i].enrollRsp.data, 0,
415 users[i].verifyRsp, true);
416 }
417 ALOGI("Multiple users verified");
418
419 doDeleteAllUsers(delAllRsp);
420 EXPECT_EQ(UINT32_C(0), delAllRsp.data.size());
421 EXPECT_TRUE(delAllRsp.code == GatekeeperStatusCode::ERROR_NOT_IMPLEMENTED ||
422 delAllRsp.code == GatekeeperStatusCode::STATUS_OK);
423 ALOGI("All users deleted");
424
425 if (delAllRsp.code == GatekeeperStatusCode::STATUS_OK) {
426 // verify multiple users after they are deleted; all must fail
427 for (size_t i = 0; i < sizeof(users) / sizeof(users[0]); ++i) {
428 setUid(users[i].userId);
429 verifyPassword(users[i].password, users[i].enrollRsp.data, 0,
430 users[i].verifyRsp, false);
431 EXPECT_EQ(GatekeeperStatusCode::ERROR_GENERAL_FAILURE,
432 users[i].verifyRsp.code);
433 }
434 ALOGI("Multiple users verified after delete (all must fail)");
435 }
436
437 ALOGI("Testing deleteAllUsers done: rsp=%" PRIi32, delAllRsp.code);
438}
439
Dan Shiba4d5322020-07-28 13:09:30 -0700[diff] [blame]440GTEST_ALLOW_UNINSTANTIATED_PARAMETERIZED_TEST(GatekeeperHidlTest);
nelsonli79aada22019-11-20 15:11:04 +0800[diff] [blame]441INSTANTIATE_TEST_SUITE_P(
442 PerInstance, GatekeeperHidlTest,
443 testing::ValuesIn(android::hardware::getAllHalInstanceNames(IGatekeeper::descriptor)),
444 android::hardware::PrintInstanceNameToString);